handbook/tools/3.Web-Hacking/4.Injection/Tools/ParamSpider.md


## Top Commands

```
python3 paramspider.py --domain WEBSITE --exclude woff,css,js,png,svg,php,jpg --output WEBISTE.txt
```


## What is ParamSpider

Search all parameters that can be FUZZ on a website

##  Key Features :

-   Finds parameters from web archives of the entered domain.

-   Finds parameters from subdomains as well.

-   Gives support to exclude urls with specific extensions.

-   Saves the output result in a nice and clean manner.

-   It mines the parameters from web archives (without interacting with the target host)


https://github.com/devanshbatham/ParamSpider
vault backup: 2024-08-31 01:07:21 2024-08-30 23:07:22 +00:00
			`## Top Commands`

			```
			`python3 paramspider.py --domain WEBSITE --exclude woff,css,js,png,svg,php,jpg --output WEBISTE.txt`
			```


			`## What is ParamSpider`

			`Search all parameters that can be FUZZ on a website`

			`## Key Features :`

			`- Finds parameters from web archives of the entered domain.`

			`- Finds parameters from subdomains as well.`

			`- Gives support to exclude urls with specific extensions.`

			`- Saves the output result in a nice and clean manner.`

			`- It mines the parameters from web archives (without interacting with the target host)`


			`https://github.com/devanshbatham/ParamSpider`